OK - thanks for the feedback. I'll look into using authAuthority and SASL. Though I'm not sure all my clients (MacOSX etc) support SASL. Paul